Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/rRqz65pZZHIuPpuIpcFzrCjPQRs.roa
File: rRqz65pZZHIuPpuIpcFzrCjPQRs.roa (raw, json)
Hash identifier: YjY3bveeuRHWBvPQIIbMQLSDQTPhfcUIh+Cnr2BshRw=
Subject key identifier: AD:1A:B3:EB:9A:59:64:72:2E:3E:9B:88:A5:C1:73:AC:28:CF:41:1B
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 08FCAB11
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/rRqz65pZZHIuPpuIpcFzrCjPQRs.roa
Signing time: Wed 13 Apr 2022 08:49:53 +0000
ROA not before: Wed 13 Apr 2022 08:49:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 83.147.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150776593 (0x8fcab11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Apr 13 08:49:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad1ab3eb9a5964722e3e9b88a5c173ac28cf411b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0b:f0:18:75:13:35:cb:87:11:51:ec:5e:8f:
fb:9e:36:5c:fe:12:23:c2:94:c7:57:ea:11:c8:01:
92:7d:37:60:03:73:36:52:90:bd:2d:c7:b1:ae:24:
4b:60:de:20:16:27:90:08:62:10:ac:02:6f:d1:0f:
df:49:72:0f:92:3c:7e:9d:39:c5:33:98:36:61:89:
55:73:bf:b6:f7:e2:75:3d:f0:f1:83:53:17:ac:c8:
8b:f9:0c:ff:d5:fb:63:06:dd:a3:ec:9a:a8:15:96:
e8:30:2b:04:27:28:2a:ff:69:ad:68:90:be:1c:a5:
8f:a3:67:e4:04:7f:99:d6:35:f0:a5:b2:57:8f:1d:
d3:46:c0:97:57:24:7e:e8:38:24:33:3c:53:ed:c3:
9a:6b:af:9a:7d:ea:9b:22:2b:aa:2a:59:0b:72:0d:
4a:d6:e0:24:f6:4f:21:0d:af:28:76:21:8c:d6:a1:
c1:f8:53:c3:8c:a0:71:6a:8f:86:b4:81:de:cd:a3:
7b:1a:ba:03:2f:3b:db:80:31:02:0c:50:5c:34:9f:
7d:68:6c:2a:29:13:45:8c:ec:5f:b6:27:b3:98:71:
3a:3f:2f:96:7a:c4:04:f9:17:73:73:c8:b8:a7:85:
8a:3a:f3:d1:e6:07:fe:61:d0:52:71:5f:36:9f:8a:
5a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:1A:B3:EB:9A:59:64:72:2E:3E:9B:88:A5:C1:73:AC:28:CF:41:1B
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/rRqz65pZZHIuPpuIpcFzrCjPQRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.244.0/22
Signature Algorithm: sha256WithRSAEncryption
21:97:6a:9e:da:fe:85:d3:8d:a1:f6:ad:64:8f:87:aa:9a:d6:
1c:79:a4:6d:5a:8e:a9:f7:14:14:6f:c6:02:1b:47:a9:25:59:
84:92:50:62:15:86:52:e5:ec:d0:aa:e5:43:f3:a5:27:ad:c2:
24:c6:21:9a:92:d6:59:b6:7a:fa:09:33:d3:02:dd:14:96:91:
67:1d:aa:69:6e:8a:af:34:05:27:a2:5c:89:96:23:c8:21:1d:
67:9d:1b:e0:fa:de:74:a9:be:bf:52:79:6c:69:f1:1c:41:26:
d5:4d:05:d3:00:c0:20:6f:14:63:a8:e2:ce:04:a2:9a:66:ac:
47:5e:92:52:64:39:1c:f9:c8:53:83:f0:20:70:fe:4f:0b:d7:
d0:e7:f3:1a:58:f7:9f:98:db:19:e6:dd:40:f9:31:67:43:9e:
cb:ae:b8:0b:6f:62:33:77:e7:8e:6c:13:da:34:44:b9:cf:01:
37:34:36:1c:36:52:d4:bf:36:0a:92:31:85:94:43:6c:d1:24:
66:f5:42:a6:0f:06:2d:e6:a5:07:2c:e1:01:f6:72:5a:b8:7c:
fb:b7:f7:d3:69:30:a2:9b:1d:58:dc:6e:b8:fe:51:eb:43:d3:
20:72:56:42:98:5a:86:2a:b4:b7:3d:83:de:ca:f7:62:1e:2a:
88:53:06:ee
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECPyrETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Mjc3OGRlMmE5YmU5ODAyMTIwMzgyZTc1MGQxNTllOTU4NzJjMmFlMB4XDTIyMDQx
MzA4NDk1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWQxYWIzZWI5YTU5
NjQ3MjJlM2U5Yjg4YTVjMTczYWMyOGNmNDExYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANEL8Bh1EzXLhxFR7F6P+542XP4SI8KUx1fqEcgBkn03YANz
NlKQvS3Hsa4kS2DeIBYnkAhiEKwCb9EP30lyD5I8fp05xTOYNmGJVXO/tvfidT3w
8YNTF6zIi/kM/9X7Ywbdo+yaqBWW6DArBCcoKv9prWiQvhylj6Nn5AR/mdY18KWy
V48d00bAl1ckfug4JDM8U+3Dmmuvmn3qmyIrqipZC3INStbgJPZPIQ2vKHYhjNah
wfhTw4ygcWqPhrSB3s2jexq6Ay8724AxAgxQXDSffWhsKikTRYzsX7Yns5hxOj8v
lnrEBPkXc3PIuKeFijrz0eYH/mHQUnFfNp+KWqsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBStGrPrmllkci4+m4ilwXOsKM9BGzAfBgNVHSMEGDAWgBTCd43iqb6YAhID
gudQ0VnpWHLCrjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3duZU40cW0tbUFJU0E0TG5VTkZaNlZoeXdxNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjgvNDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQzNC8x
L3JScXo2NXBaWkhJdVBwdUlwY0Z6ckNqUFFScy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgv
NDEwOTMwLTlkNjUtNGJlOC05ZWJhLWY5OGRhNTRhZjQzNC8xL3duZU40cW0tbUFJ
U0E0TG5VTkZaNlZoeXdxNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlOT9DANBgkqhkiG9w0BAQsFAAOC
AQEAIZdqntr+hdONofatZI+HqprWHHmkbVqOqfcUFG/GAhtHqSVZhJJQYhWGUuXs
0KrlQ/OlJ63CJMYhmpLWWbZ6+gkz0wLdFJaRZx2qaW6KrzQFJ6JciZYjyCEdZ50b
4PredKm+v1J5bGnxHEEm1U0F0wDAIG8UY6jizgSimmasR16SUmQ5HPnIU4PwIHD+
TwvX0OfzGlj3n5jbGebdQPkxZ0Oey664C29iM3fnjmwT2jREuc8BNzQ2HDZS1L82
CpIxhZRDbNEkZvVCpg8GLealByzhAfZyWrh8+7f302kwopsdWNxuuP5R60PTIHJW
Qphahiq0tz2D3sr3Yh4qiFMG7g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org